Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

NFS/RPC help needed

Basically we have a NFS server on the inside interface and a NFS client

on a lower security interface (but not the outside) when the portmap client

connects to the portmap server to find out the port of the corresponding mountd server the PIX doesn't seem to open a hole for this next connection.

This is causing hassles because we want to block ALL traffic except the essentials.

But now we have to allow ALL traffic to our NFS servers because the PIX cant

do a "fixup" for RPC.

The doco suggests it should work, but its very vague.

Any help would be much appreciated!


Re: NFS/RPC help needed

If you are looking for a fixup for Microsoft RPC, the command you can use is:

established tcp 135 permitto 1024-65535. This allows the PIX to open up ports based on the TCP 135 connection. However, it would not work if you are doing NAT.